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[PDF] Linux security module iramework 

... Ottawa Linux Symposium 2002 606 User Level process open system call Kernel space mode 
Access Look up ... The sk buff structure provides storage for packet data and related state information, 
and is ... A set of sk_buff hooks is provided for lifecycle management of the security ... 



[PDF] Distributed Systems 

... sys- tern provides only mechanisms: Allow (dynamic) setting of caching policies, prefer- ably ... 
Replication: Make copies of data available at differ- ent machines: Replicated file servers ... to 
maintain global memory map in software Inherent distributed resource management: no cen ... 
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AMnet 2.0: An imp roved architecture for programmable networks 

^ o 

... of critical malfunctions is much smaller when using user-space code than with kernel-space code ... 
For inspection of the TCP content, we can, eg, redirect the data stream to a local ... connections 
can eg be stored in the EE using the appropriate helper functions for list management. ... 

Gsted by 24 - Related articiss - BL Direct - AH 22 versions 



Securlly issues 

S Gritzalis, G Aggeiis - ACM SIGOPS Operating Systems Review, 1998 - portal .acm, org 
... programming languages were designed for building components where the complexity is in the 
data structures and ... Like the trusted interpreter, kernel space in operating systems has complete 
access to all of the system's ... management, certificate management and access control ... 



[PDF] Fidran: A flexible intrusion detection and response framework for a ctive .■. 
A Hess, M Jung, G Schafer • Proc. of 8th IEEE Sympoy!!.j!!-i r.-i! Conspsileri .. 2003 ■■ Csieseer 
... never become the target of an attack, due to irregular on-line times, chang- ing IP-addresses 
or having the perception that their system or data, respectively, is ... FIDRAN User-Space Module 
1 FIDRAN Management Module Insert Op Module (after policy checking) ... Kernel Space ... 
Cited by 16 - F^eialed ^articles - View as. HTML - M.13.yers[ons 



[PDF] An active router architecture for multicast video distribution 

... Source Port Destination Port UDP checksum UDP length UDP WaveVideo Data Page 3. ... It forwards 
requests from the kernel to other plu- gin management modules and vice versa. • Policy Controller 
(PoC): the PoC deals with polioy rules set by the router's administrator. ... 



Router plugins: a software architecture for next-generation routers 
^ ^ ^ . " o ..." IEEE/ACM Transactions 2000 - portai.acm.org 

... High performance is guar- anteed only in part through a fully kernel space im- plementation, which ... 



that are envisioned include a plugin for statistics gathering (useful for network monitoring/ 
management), a plugin ... 3 The mbuf is a data structure that is used to store packets and ... 

Arrow: A flexible arc^^^ 

G Fankhauser, B Stiller. B Piattner ■■ Netnoni-Jics. 1999 ■■ Springer 

... in conjunction with communication protocols responsible for data transport and resource 
management protocols ... Although access to packet data in user-space is much slower and not ... and 
accounting architecture based on Crossbow is divided along the user-kernel-space line as ... 
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[PDF] Service Level Instrumentation 101 -An In-Depth Look at How to Instrument ... 

SE Smead - CMG-CONFERENCE-, 1998 - cmg.org 

... TCP/IP NETWORK DRIVER INTERFACE NETWORK DATA LINK/PHYSICAL CORE KERNEL 
SERVICES Kernel Space User Space ... Figure 1 . Service Level Instrumentation in the Application 
Stack Performance management Agent Function/System Call Interface ... 
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Secure communications in ATM networks 

... , C Delahaye, H Lestoid, R Posch, ... - iEEE 15th 1999-doiJe8ecornputersoGi8ty.org 
... The SP (Security Policy) module allows users (or the security officer) to inform the lE/OAM module 
of the security policy (cf. ... The KM (Key Management) module implements ... Contrary to the lE/OAM 
module, it has access to the data traffic so it is required to inform the lE/OAM of the ... 
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[PDF] Practical programmable packets 

JT Moore, M i-iiCi^s, 3 Netties • IEEE iNi"{,)CX3M, 2001 - Citeseer 

... to compute a maximum size for a packet buffer, thus avoiding high memory management costs 
during ... sending a packet takes Q' 0 p time, as does deliver- ing data with demux. ... As we gain more 
experience with SNAP, we expect to develop more insight into reasonable policies. ... 
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A pra ctical learning-based approach for dynamic storage bandwi dth allocation 

V S ^ V V ^ - ^ V V \ V. ^ 

... These arguments motivate the need to automate simple storage management tasks so as to make 
the ... Since data accessed by applications may be stored on overlapping set of storage devices, 
the ... Further, the system state by itself does not reveal if a particular class has met its ... 

CItad by 13 - Relaied artsolss - 8L Dsrec^ - All J3. versions. 



Implemenration of IPv6 in 4.4 BSD 

... Kernel space ... into the Key Engine to obtain Security Association data for the outgoing packet. ... If 
no appropriate Security Associ- ation exists and a key management daemon is run- ning, then 
the Key Engine sends a Request message to that daemon and informs the output policy ... 
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[PDF] . . . Server and Secure^S^^^ 
M\i Glover ■■ 2001 ■- dticmil 

... multitasking, and more advanced memory management. 5. Advantages of Linux vs. ... single 
processor and lack the ability to protect their data structures from concurrent access ... supporting 
only a single type of file system, process scheduling policy, and executable format. ... 



[PS] A client/server based multiparty teleconferencing system and its lip 

M Tan - 1996 - histoncai.ncstrl.org 



... network, so the destination macliines can consume most of data generated by tlie source in time 
witli acceptable jitter and intra-stream skew. Based on this policy, light-weighted ... management 
is left to the operating system and the threads are scheduled transparently by ... 
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Creation of reconfigurable hardware objects in PVM environments 

GM Megson, RS Fish, DNJ Clarke -■ Leclus-e noies in corsiputer science, 1998 - Springer 

... U ] Kernel Space i s ... the time for generating (or choosing) an Hardware Object and downloading 

must be small compared with the actual run-time of the object on a data set ... Algorithmic Skeletons: 

Structured Management of Parallel Computation, MIT Press, Cambridge, MA., 1989 ... 
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[PDF] Combining multiple intrusion detection and response technologies in an ... 

A Hess, M Jung, G Schaefer Proc. of17th DFM-Arbeitstagung Ober . .. 2003 - Cfeseer 
... Finally, the task of the storage mechanism is to log a specified amount of packets and additional 
information in order to make this data available to the network ... It registers / unregisters the 
op-modules which are loaded / unloaded into kernel space by the management module ... 

Cited by 1 - Related articles - View as HTML - .All 9 versions 

Su p porting distributed multimedia applications on ATM networks 

D Saha - In Ph. D. Dissertation, 1995 - eprints.kfupm.edu.sa 

... because protection boundaries are crossed in copying data from the user to the kernel space 
and vice ... and the operating systemno longer need tocontrol I/O transfers, I/O data pathcan bypass 
the ... Due their non-work-conserving service policy, both SG and HRR fail to exploit the ... 

Csted by iO - Related ariicles - View as HTML - ..A.II 4 ver«;ions 



"Topo logies" — distributed objects on muiticomputers 

... tems]: Communications Management; D.4.8 [Operating Systems]: Performance ... The views 
presented here are those of the authors and are not the policies or views of the US ... Textually, 
the abstractions in Figure 1 may be described as the following data types and their respective ... 



Monitoring edge-to-edge traffic aggregates in differentiated services networks 

JY Kim, JWK Hong, TS Choi - ... of Net\,¥ork and Systems Management. 2001 - Springer 

... A mon- itoring database is needed for storing and retrieving the combined and analyzed data 

from MIB II and ... Our work has focused on this lack of management functionality. ... There are two 

process spaces in the Linux operating system: the user space and the kernel space. ... 
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Deciding when to forget in the Elephant file system 

... A user can specify any version as a landmark. In addition, tfie system uses a heuristic to 
conservatively tag other versions as possi- ble landmarl<s. The cleaner frees only versions 
that the Keep- Landmarks policy determines are unlikely to be landmarks. ... 



[PDF] Policy-Enhanced Linux 

... When a subject is a multilevel subject, the subject needs to communicate with the kernel to inform 
it of the Policy Label to assign to each new object. This can only be accomplished by modifying 
the creatO system call to accept the additional Policy Label parameter. This ... 

Cited ;2 - ?":eiaied ait'Oies - V-ex¥ a;v H TML - .M.lZ.yersions 



Elephant: The file system that never forgets 

... When a timestamp tag is not specified, the selected ver- sion is determined by either the ... We 
envision that this system call will be used by a new suite of utility programs that allow ... Elephant 
cleaner is responsible for reclaiming stor- age and is directed by the policies outlined in ... 
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[PDF] Linux, security m 

C Wright, C Cowan, J Morris, S Smalley, G Kroah ... - Ottawa Linux 2002 - Citeseer 
... many instances of the same hook throughout the kernel, to ensure that the module is consulted 
at every place where a system call could "error out ... LSM adds a security field to the task_struct 
to allow security policies to label a task with a policy specific security label. ... 



Dynamic label binding at run-time 

Y Beres, CI Dalton -■ Proceedings of the 2003 workshop on Kovv . lal aom.org 

... At this point the kernel can be instrumented to check whether any particular policy, such as access 
control, applies on the passed label values. In cases when the policy prohibits writes to the 
intended destination the original system call is skipped over and an error call is ... 
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... spaces. Each exported operation can be encapsulated within a system call that checks 
the ownership of any resources involved. ... relinquish. Policy An exokemel hands over 
resource policy decisions to library op- erating systems. ... 



[PDF] Myjtileyej secyrl^ 

iViD Mcilroy, JA Reeds - Software ~ Practice and Experience, 1982 - Citeseer 

... in privileged code Privileged processes in effect administer their own security policy, and thus ... 



the privilege "noclneck," winicin allows a pro- cess to circumvent automatic label checking on ... used 
to detect changes in labels of open files; and a special system call (unsafe) identifies ... 
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... in A automati- cally creates a subject in B when it does a normal ezec(] system call of an ... as Multics 
[S , Trusted XENIX ' TMach [lo], etc.) store one L [9 , AC label or DAC ... Instead, our approach 
maintains type associations in a UNIX kernel-resident runtime policy database that is ... 
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Compartmented mode workstation: Prototype highlights 

JL Berger, J Picciotto, JPI ■ IEEE Transactions 1990 ■ doi.ieeecomputersociety.org 

... The system call that creates new processes has been modified to set the sensi- tivity level of the 
child process equal to the sensitivity ... involved." This notion of having the label on an object "float 
up" as data is added to it is similar to the high- water mark policy implemented by ... 



Countering code-injection attacks with instruction-set randomization 
GS Kc, AD Keromytis, V Prevelakis - ... of the 10th ACM cor'O o 

... I $1 exit987654 0 In all cases, we must hide low-level (eg, parsing) errors from the remote user, 
as these could reveal the tag and thus ... that cause bad data to propagate in the system, eg, not 
checking for certain Unix shell characters on input that is passed to the systemQ call. ... 

Cited by 23? - ReJated.Mlcles - MLM.yersions 

[PDF] Design and impleme^^^^^ 

... As with other data fields in the credential, the label field is protected by an "immutable once shared" 
policy-the credential label may be ... credential data in a threaded environment, and ensures that 
credential used by a thread is consistent for the duration of a system call. 7.9. ... 



[PDFi Fiuie-Set Moaehng of Trusted Computer System 

... On the other hand, a single rule of operation that models a system call might use several requests. ... 
Then, if the search is valid, it again would appeal to the Access Rules for a policy deci sion on 
creating the file. The set of requests we have defined here is not minimal. ... 
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Tne SimpleScalar tool set, version 2.0 

... configures the data TLB. configures the instruction "['LB. flush all caches on a system call; 
(<boolean> = 01 1 I tree I TRUE I false I FALSE). ... <assoc> associativity of the cache (power of 
two). <repl> replacement policy (1 1 f I r), where I = LRU,f= FIFO, r = random replacement. ... 
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[PDF] Low:oyerhead software dyn 

K Scott. J Davidson, K SKadron ■■ University of Virginia. Charlottesville, VA, 2001 ■■ Giteseer 
... indirect branch target in the appropriate IBTC. If the branch target matches the tag in the 
IBTC ... gram may be terminated or other appropriate action taken. As was the case with buffer 
overflow safety checker, if the overhead of the system call policy ... 

[PDF] Toward a universal mtegrity model 

LJ LaPadula, JG Wiiliams •• IEEE Computer Security Foundations 1991 - ccsl.carleton.ca 



... Open-file functional Design description; for example, UNIX open system call fl] • Functional ... and 
discretionary access control policies typically defined in a security policy model, the ... Model also 
addresses information labels with markings, an internal floating label mechanism, and ... 

C>?;-;d hy - Reia^ed ariiclex - Ail 3 ve^XiOri^ 

[PDF] Modular specification of interaction poitcies in distributed computing 

... This thesis demonstrates that meta-level specication of interaction policies enables modular 
description of component interaction policies, as well as customization of policy implementations. ... 
The factors that determine a policy's implementation may vary between components. ... 
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... RAD of the service and the DRAD belonging to the corresponding trust label must be ... After 
intercepting a socket system call the security kernel module made a lookup in the local ... security 
policies inside the corresponding database and the position of the security policy inside the ... 

Cited by 6 - Related arUdes - .AH 15 versions 

Implementing a cache for a high-performance GaAs microprocessor 

OA Olukotun, TN Mudge, RB Brown - Proceedings of the 18th 1991 ■ portai.acm.org 
... We present a variant of a write-through policy called wrate-only which performs almost as well 
as subblock placement without the use of extra valid bits. ... Hence, cache tag lookup does not require 
any bit translation and occurs in parallel with the virtual page number translation. ... 

Exten ded labeling policies for enhanced applicati on support 

... 7 User Process 4. System call return 1 . System call USER PROCESS SPACE 3. FGL response 
2 ... For example, an application that downgrades a file by lowering the file's label will not ... That these 
applications fail is not surprising; if a system's security policy changes, applications ... 

[PDF] Execution Policies Research and Implementation 

\\'^ ••docs.nps.edu 

... chmod mv sync shutdown csh rm chown reboot cp rmdir label vi Is ps more Page 11.... Support 
of this feature would require at least one new system call, as well as changes to the process 
scheduling logic. Relation of Execution Policy to Traditional MAC Policy ... 
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